--- Begin Message ---
On Fri, Aug 06, 2021 at 02:00:30PM +0200, Lukas Tribus wrote:
> I'm no longer putting in hundreds of hours to fight losing battles,
> which earlier in my carrier I did:
>
--- Begin Message ---
I am cleaning up a cisco lac/tunnelswich/lns setup historically grown.
Do I need the "vpdn multihop" statement on the final LNS
which should only terminate the ppp sessions inside the l2tp tunnels
and not forward them based on realm/domain-name/... in my
--- Begin Message ---
Robert Raszuk wrote:
> Hi Victor,
>
> ISIS has analogy to OSPF down bit integrated if this was your question.
Hopefully it is.
> But
> do check with your implementation to make sure if it supports ISIS
leaking.
>
> PE-CE
--- Begin Message ---
>Dear Colleagues,
>
>If a customer's several sites are connected to the same PE router,
>but to different interfaces, which is the recommended practice,
>assuming that all these sites must be reachable from one another:
>
>1. Place all the
>
> SPF timers is generally a design decision, so the values above are just
> reflecting different design approaches: Choosing an initial wait of 1ms
(the
> latter settings, i.e. spf-interval 5 1 50) tunes the network for optimal
reaction
> for link failures, so routers will
Hey,
There seem to be some conflicting suggestions for ISIS fast convergence
timers, and I can’t seem to understand why that would be. The former example
is ISIS in a LFA FRR environment, the latter is from a general best practise
guide. I can’t imagine LFA FRR or not would
Randy,
>JunOs "no-prepend-global-as" is the Cisco equivalent of replace-as
>JunOS "private" is the Cisco equivalent of no-prepend
>JunOS "alias" is the Cisco equivalent of Dual-AS
>JunOS "loop n"; Cisco equivalent ???
I think neighbor foo allowas-in is the cmd you’re looking
> Just an update to this - the "match protocol static" didnt fix the problem,
> but adding "next-hop-self" to peer policy didI dont know if both were
> required (Only had limited time to test)but static routes on the
> RR-client
> are now working, as the next hop is now the loop of
Nick wrote:
> CiscoNSP List wrote:
> > Static route to that prefix on the RR-client, shows as "no best path"
> > as the 79.106 prefix is "inaccessible"? but as above, it is
> > accessible and I can ping it? (So the static is not advertised to any
> > other RR-clients):
>
> you'd make it a lot
On 20/Jun/16 19:41, Jared Mauch wrote:
>> Tags are specific to Cisco, you should be using a community instead.
>We use tags on Juniper quite successfully. Makes it easy to introduce
>static routes into iBGP.
>It irks me that Cisco does not support this.
>
> You can use something like
>
>On Thu, Feb 11, 2016 at 10:00:16AM +0100, Robert Hass wrote:
>> I'm looking for function which can shutdown an interface if CRC error
>> threshold will be overdraft. Is any existing command for this in JunOS
>>for
>> MX and EX platforms ?
>>
>> If not maybe some OP script ?
>
>You sort of hit
On Thu, Jul 16, 2015 at 10:06:02AM +0300, Hank Nussbacher wrote:
RP/0/RSP0/CPU0:GP1#show access-lists ipv4 catch hardware ingress
location
0/1/cpu0
Thu Jul 16 10:03:09.876 IDT
ipv4 access-list catch
10 permit ipv4 host 111.107.97.111 any (next-hop: addr=128.139.217.4,
vrf
Is
On Thu, May 28, 2015 at 04:06:43PM +0300, George Giannousopoulos wrote:
As you have probably already noticed, after OSPF timers tuning, the
convergence is quite fast even without the LFA.. So why would you
bother to
configure LFA in the fiirst place?
The interesting bits are in the two
, result=101, error=0,
vendor_err=0, syslog_error_code=3, syslog_key_type=0
Mar 20 07:33:13.080: VPDN uid:85 VPDN/AAA: accounting stop sent
VPDN-6-AUTHENERR: L2TP LNS-172-20-1-1 cannot authenticate for tunnel ?
regards
Olivier
2015-03-20 8:01 GMT+01:00 Oliver Boehmer (oboehmer)
oboeh
is obligatory ?
Sent by the radius ?
Because with my suplier we dont have tunnel-password
I cant test now but it's a track I'll watch
Regards
Olivier
Le vendredi 20 mars 2015, Oliver Boehmer (oboehmer)
oboeh...@cisco.commailto:oboeh...@cisco.com a écrit :
my vpdn knowledge is a bit rusty, you're
You might need
vpdn multihop
vpdn authen-before-forward
the first cmd will enable forwarding of sessions to another LNS, and the
2nd will allow this forwarding to be done on a per-user (as opposed to
per-domain/realm) basis
oli
-Original Message-
From: Olivier CALVANO
Hi Everyone,
I have a vrf (TEST), configured on 2 PE's...both learn each others
connected+static routes (redist connnected, redist static), so that
portion is working fine...but I also have leaked the default route from
PE_A (That we receive from an upstream provider), into the vrf
TESTon
Hi,
We are trying to parent one CSC-CE to two CSC-PE. The ISP is having MPLS
and RR and we are not able to succeed. Is this technically possible.
yes, it is. so it works if you single-home the CSC-CE to the ISP? requires
much more info about the setup/design to troubleshoot further.
I am looking to setup some policy based routing on an IOS-XR router. From
what I understand, XR does not have PBR, but ABF. When looking at how ABF
works, I don¹t see how to set a next hop route (only next hop per TCP
port).
well, you can direct any traffic matching an ACE (be it layer 3 or
, that sounds straight-forward, just apply this inbound and you're
set..
oli
Thanks for the pointers.
-Lee
On Wed, Sep 10, 2014 at 11:09 PM, Oliver Boehmer (oboehmer)
oboeh...@cisco.com wrote:
I am looking to setup some policy based routing on an IOS-XR router. From
what I understand, XR
Looks like I may not have this feature as these are 12410XR chassis. Here is
what I have in our lab environment.
true, unfortunately ABF is not supported on the XR12000 platform. it works on
ASR9k and CRS..
oli
___
cisco-nsp mailing list
a new BGP session, before I can shutdown the neighbor
or apply a specific peer-group/session-template/policy-template, I need
to configure the remote-as, so the first command in the address-family is:
neighbor 2001::123 remote-as 65005
Now, if I don't specify the policies right away, or
[neighbor 192.0.2.100 remote-as 64511 shutdown]
Wow, you can do that? I feel really really dumb now...
so do I ;-)
oli
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
Hi Everyone,
We typically use OSPF (CE/PE) so customer can advertise routes into their
VRF - We have issues with failover (When customer site has 2 links) but
the links go to different PEs of ours (We only have agg's from carriers
on certain PE's)..
eg.
Customer(vrf) has a site(foo) connected
-Original Message-
From: M K gunner_...@live.com
Date: Tuesday, 3 June 2014 11:03
To: cisco-nsp@puck.nether.net cisco-nsp@puck.nether.net
Subject: [c-nsp] ISIS IOS and IOS XR
Hi all
I am having issue establishing ISIS between IOS and IOS XR
IOS
R1#sh run int lo0 | inc ipv6
ipv6 address
route-policy CONNECTED
if source in (192.168.200.0/24, 192.168.201.0/24) then
pass
endif
end-policy
RP/0/0/CPU0:XR2(config)#router ospf 1
RP/0/0/CPU0:XR2(config-ospf)#redistribute connected route-policy CONNECTED
Am getting the below error
router ospf 1
redistribute connected
On Monday, April 28, 2014 07:25:27 PM Aaron wrote:
p.s. does anyone know if the bgp graceful-restart is
really necessary ? if so, why?
In my shiny new deployment, I'm considering turning off GR
if I do NSR. They are mutually exclusive.
well, as I mentioned in an earlier thread: GR still
On Mar 21, 2013, at 4:30 PM, Justin M. Streiner strei...@cluebyfour.org
wrote:
The last I heard (in the past month) was that this was a 2014 roadmap
item. I don't if it's EC'd for a specific version yet, nor do I know
what
platforms will be supported. My guess would be ASR9K/1K, Nexus
On Sun, 4 May 2014, Oliver Boehmer (oboehmer) wrote:
To revive an old threadŠ Has anyone heard anything new on this topic
in
the past year? It now being the aforementioned 2014 and all?
will ship in 5.2.0 soon and XE 3.14 later this year..
Any word on support in NX-OS?
7.3, last I heard
Thank you all; so let me just see if I got this right.
If we're not loadbalancing with IGP (instead there's primary/backup
uplink)
on edge, and not using H.FIB (with cef table output-chain build favor
convergence-speed) and we're running full BGP table on edge routers,
anyone
with experience on
can you add send-lifetime .. to the key? It might not be active without
it..
key chain KEY
key 1
key-string password cisco
cryptographic-algorithm md5
send-lifetime 01:01:00 january 01 2014 infinite
-Original Message-
From: M K gunner_...@live.com
Date: Wednesday, 23 April 2014
HI,
On Thu, Apr 10, 2014 at 03:11:38PM -0500, Alejandro Aristizabal wrote:
How can I make if this happen again, the interface Gi0/0/0/19 goes down
?
UDLD, or plain GigE autonegotiation.
or just plain LACP, which will take the link out of the bundle?
oli
Hi JC,
The real life problem is A and B are PE routers and C is the RR. So I
do not
have MPLS on the interfaces towards C from A B. So when the A-B link
fails, it will break the label switched path between them. A and B have
CsC
links which should then be preferred..
If you are using
so, I have some internally anycasted prefixes (DNS resolvers) as well as
bgp maximum paths set to allow both ibgp and ebgp multipath. Oddly, as
you can see below the multipath appears to think two paths are identical
even when they have different IGP metrics (path #1 and path #2), any idea
if
Message-
From: Oliver Boehmer (oboehmer) [mailto:oboeh...@cisco.com]
Sent: Monday, March 31, 2014 11:26 AM
To: John van Oppen; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] interesting ASR 9k bgp multipath issue
so, I have some internally anycasted prefixes (DNS resolvers) as well as
bgp
CsC with LDP was just released in 5.1.1
(http://tools.cisco.com/squish/AEe16)
oli
-Original Message-
From: Phil Bedard phil...@gmail.com
Date: Monday, 10 March 2014 18:34
To: Arun Kumar narain.a...@gmail.com, cisco-nsp@puck.nether.net
cisco-nsp@puck.nether.net
Subject: Re:
can you just remove the action 2.0 reload from the script for the test so the
router just spits out the syslog and then send the logs?
I noticed that the maximum delay down value accepted by the parser is 180 (3
minutes), maybe it didn't accept the command when you pasted it? I just tested
this
Hi allI am trying to do a event manager script that will do the below and
need some assistanceI want to ping to a specific destination and if the
ping request timed out for a period of for example 5 minutes , the router
should be reloaded
not sure whether this is a good idea or not (the router
hi.
note: I haven;t touched 6PE in a while, so I might not be 100% accurate:
I’ve been trying to evaluate 6PE as a transition mechanism lately and
I’ve stumbled upon something I didn’t initially expert. My understanding
of 6PE is as follows ( and feel free to correct me if I’m wrong ☺ ) :
PE-A
we are currently running a small OSPF network with about 50+ boxes using
default IOS timers. We would like to tune LSA/SPF throttle timers.
Now, because some of the boxes have a decent CPU (ASR1000, 6500, etc)
running
more important traffic, and others have a small cpu, like ME3400 layer 3
On Monday, February 17, 2014 03:24:04 PM Cydon Satyr wrote:
Should a policy-map with priority/bandwidth/queue
parameters be applied on a bundle interface or
individual physical interfaces?
With IOS XR, QoS policies are applied on the bundle
interface, not the member links.
true, however
Hello team,
I running an MPLS VPN network over ASR1002 Cisco routers and i have a
request from a client to offer multi-VRF. Is it possible to run the
multi-VRF without affecting the current MPLS network and setup.
not sure what you mean exactly, but you can just run two separate L3
interfaces
Hi Folks,
Is anybody running Remote LFA on IOS XR please?
Does it require explicit null labels to be enabled network wide please?
generally yes, reason is that some platforms/versions (don't have the
details ready just now) can't rLFA-protect a primary path which has no
label (due to
Are object-gropus not supported with ABF?
no, unfortunately not yet. It's on the roadmap for a future release..
oli
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
Daniel,
I'm trying to find any design guide, white paper, Cisco live
presentation or other relevant documents that describe different
redundancy scenarios for a network like this:
http://imgur.com/mBqpqRf
The design is not final so if you have any pointers on that as well I
would appreciate
Richard,
On a single PE with two VRF's, I create a RT export on VRF A and a RT
import on VRF B, VRF A has some prefixes to export which appear in VRF B
after approx 20 seconds, what process dictates the 20 seconds and is it
configurable.
Until recently, importing prefixes into VRFs was done in
My 7204VXR (NPE-300) is showing weird behaviour. When enabling CEF no
packets are actually routed.
Config minus passwords can be found here:
http://pastie.org/private/ehsxoszlhqxo9lzftjzg
This also happened before using the tunnel (when I just NATed out via the
Dialer 1 interface)
Any Ideas?
Oliver, forget what I said... I've read will prefer instead of will
never prefer :-(
It's good to know that another provider is using this kind of
architecture. It's not something we want to use for all our customers
but this specific customer has some constraints
which require to
I'm trying to find a way to use both links at the same time with only one
HSRP master on the primary router...
I had 2 ideas :
1/ use local pref to use one link for a specific dest network and the
second link for another network
obviously depends on number of networks and the distribution of
Oliver, forget what I said... I've read will prefer instead of will never
prefer :-(
It's good to know that another provider is using this kind of architecture.
It's not something we want to use for all our customers but this specific
customer has some constraints which require to
Hi I was working on a setup to test the OSPF conditional injection of a
default routeIt worked me fine for Serial connection , but for Ethernet
media it did not why ?
because you didn't share the config? ;-)
oli
Hi all,
Did anyone get this to work on XR 4.3.2.
vrf TEST
address-family ipv4 unicast
export to default-vrf route-policy default_policy_pass_all
route-policy default_policy_pass_all
pass
end-policy
[...]
RP/0/RSP1/CPU0:#sh route vrf TEST
B99.99.99.1/32 [200/10] via 11.11.11.11
Thx Oliver .
router bgp xx
address-family ipv4 unicast this was missing
vrf TEST
address-family ipv4 unicast
redistribute connected metric 10
redistribute static metric 10
as the leak route is know via bgp ( in default vrf) and not connected/static
( as in vrf )
yes, this is
Anyone know how to accomplish shaping traffic at a rate greater than 128
mbps ?
When I apply the policy-map/class-map to an interface it fails with this
message.
'Cannot support child/flat shape rate 128Mbps'
can you please share the configuration you are trying to apply, including
On Wednesday, November 06, 2013 04:43:22 PM Oliver Boehmer
(oboehmer) wrote:
No, and neither does ISIS, and I am not aware of any such
a requirement. Seriously?
Yeah, millions of IGP entries is not a typical requirement,
AFAIK. BGP issues don't necessarily propagate to the IGP
:-).
I think
no doubt here.. hence I really wonder who would ever put
forward such a requirement (and Adam added a smiley, so
not sure ;-).. We have unified-mpls to scale to very
large MPLS domains, but the IGP certainly doesn't need
to scale anywhere close to this..
RFC 3107, I'm assuming.
yep,
On Thursday, November 07, 2013 11:10:37 AM Oliver Boehmer
(oboehmer) wrote:
yep, along with multi-area/level/domain IGP..
In each island, however, multi-level/multi-area IGP's break
MPLS-TE.
well, there is no free lunch ;-)
Maybe that will be solved by Segment Routing :-).
or by mutli
On 11/6/13 4:52 PM, CiscoNSP List wrote:
Don't forget to use per PE/VRF RDs.
re per PE RD's - So you are suggesting for each PE, I use unique RD's
for a given VRF? I could see this would assist with
troubleshooting(Being able to see which PE a route originated from), are
there any other
I didn't want to chime into the usual OSPF vs ISIS debate, but the
first statement is not (or at least has been for a while no longer)
true.
So does OSPF already support 1M routes as requested by an unnamed ISP?
:)))
No, and neither does ISIS, and I am not aware of any such a requirement.
IS-IS can scale to a larger number of devices in a single area and
overall network. Really depends on how many devices you are talking
about. For smaller deployments it usually comes down to who is supporting
the network and what they are more familiar with.
I didn't want to chime into the
I am looking for VRRP support on XR - 12000 / GSR with global IPv6
virtual address to achieve something like below . But seems XR is not
supporting it on 12K . Can anyone confirm what is supported on XR for
12000s ?
[...]
RP/0/9/CPU0:PE-test7.bl(config-vrrp-virtual-router)#show configuration
Does anyone have experience with FAT PW between 7600 and ASR9K?
The ASR9K supports it for sure and it has been verified.
The 7600, according to the doc, supports it only for VPLS with the
addition
of a global command platform vfi load-balance-label vlan .
We have implemented all the
George,
Oliver, since the documentation is very very limited, I'd appreciate if
you could provide some info on how each PE will identify the flow labels.
Is there a predefined range that is used only for the flow labels as Phil
previously mentioned?
you can check
not sure how you set this up, but best force an eBGP session between the
two VRFs, using a config like below which also uses unique BGP router-ids
per VRF, otherwise the updates would be dropped..
oli
int interface1
ip vrf forwarding VRF-A
ip address 10.0.9.1 255.255.255.0
int
Nam,
as Tony already said, deny clauses are not supported in QoS
classification ACLs on this linecard. So you need to change your qos
semantic.
Assuming deny was supported, your current qos policy semantic looks like
if( destination is not in (1.52.x.x, etc.) ) then
police to 1 mbps
else
On 09/09/2013 22:31, Aaron aar...@gvtc.com wrote:
Interesting, it says burst 1598 bytes , so is there a built-in burst
allowance ?
default burst is 100ms worth of CIR, with a minimum of ~1600 bytes (as in
your example).
Also says conform 65 kbps, what is that ?
minimum CIR is not 64000
Hi all , I have a small OSPF topology with one ASBR connected to EIGRP AS
12everything is working fine , my question is can i from the show ip ospf
database outputs know what is the external routing protocol ? such as in
my case it's eigrp ?
no, they show up as external routes, just as if you
Is CIR 128k in this policy ? if so, then is this correct ?
128k = 128 * 1024 = 131,072 bps
it's actually 128,000 bps.. kilo factor is 1000 in bandwidth context.
Then you mentioned default burst is 100ms worth of CIR... is this correct
?
100ms worth of CIR is 131,072 / 10 = 13,107.2 bits =
On 09/09/2013 20:16, Aaron aar...@gvtc.com wrote:
Why is this allowing 38k to flow if I'm policing at 8k ?
My understanding of policing (especially policing without any bursting
allowed) is that it's a strict action not allowed to be exceeded.
minimum policing rate on asr9k is 64 kbps..
Hi all , I have the below topologyR1 - R2 - R4R1 - R3 - R4The first path
operates in AS 12 and the second path operates in AS 13Now , I advertised
Loopback 0 on R4 (4.4.4.4/32) in both AS numbers , what I can see in R1
IP routing table is only one path and in the topology table I can see two
On 20/05/2013 17:00, Shane Heupel sheu...@twlakes.coop wrote:
We just purchased a couple of ASR9Ks and we're trying to set up AAA to
our free radius servers. We have the ASRs configured to authenticate
against the AAA servers but are having some trouble with the user
attributes being passed
On 07/05/2013 10:30, Adam Vitkovsky adam.vitkov...@swan.sk wrote:
Hi folks,
I'd like to ask what is the meaning of RIB-failure(2) - next-hop
mismatch
- in context of a VRF table please
#sh ip b vpnv4 vrf voice1 10.100.2.0
BGP routing table entry for 16160:402:10.100.2.0/28, version 22965354
On 07/05/2013 11:47, Martin T m4rtn...@gmail.com wrote:
Hi,
any ideas what is the difference between WS-X4306 and WS-X4306-GB
modules? sh module output from WS-C4506 switch:
[Š]
I checked the sh platform chassis and sh platform hardware
information plus compared sh int Gi3/3 capabilities and
Hi Everyone,
Does anyone know if an NP108 is interchangeable between the 5350XM and the
5400XM?
I’ve got a dead one in a 5350XM and could borrow one from a 5400XM if they are
interchangeable as a quick fix.
yes, the datasheets on CCO
On 29/04/2013 15:23, Aaron aar...@gvtc.com wrote:
Thanks Adam,
sh lpts pifib hardware police location 0/0/cpu0
shows all 0's in the drop column, but at the bottom it shows...
RP/0/RSP0/CPU0:9k#sh lpts pifib hardware police location 0/0/cpu0 | in
drop
Mon Apr 29 08:22:55.180 CDT
Packets
On 29/03/2013 16:46, Riccardo S dim0...@hotmail.com wrote:
Hi
do I get the same result with route-map test-1 and test-2 in setting
these community on BGP update ?
***
route-map test-1 permit 10
match ip address prefix-list site-a
set community 1:1
set community
Does anyone know exactly what's meant by sub-optimal routing issues ?
it means that a RR makes a routing decision on its client's behalf, and
its best path might not be necessarily the one the clients would have
picked (especially when the decision is based on the IGP metric to the
next-hop).
Can someone shed some light on this? What is fall-over really doing and
when might it be useful?
sorry for the confusion ;-) neighbor fall-over (without the BFD keyword)
is for multihop/non-directly-connected peers like the default behaviour
fast-external-fallover for directly connected
In the case I'm thinking of using it, we do all over our internal BGP
peering to loopbacks, which are in OSPF. If we enable fallover, it sounds
like the peer will be torn down as soon as that
next hop is removed from the routing table.
Which is generally not something folks do in iBGP, there
the ancient, but still valid OSPF Design Guide at
http://tools.cisco.com/squish/0D377 shows an example
how E1 and E2s are
installed..
perhaps this:
http://www.cisco.com/en/US/tech/tk365/technologies_white_paper09186a008009
4e9e.shtml (doesn't require a login)
oh, sorry, wasn't
On 01/03/2013 10:58, Mikael Abrahamsson swm...@swm.pp.se wrote:
On Fri, 1 Mar 2013, Christian Meutes wrote:
On 01.03.2013, at 10:01, Mikael Abrahamsson swm...@swm.pp.se wrote:
On Fri, 1 Mar 2013, Christian Meutes
Do you have your sources addresses in IGP?
Nope, BGP SAFI unicast.
Well,
According to the IOS-XR documentation on OSPF:
ASBR routes can be advertised as a Type 1 or Type 2 ASE. The difference
between Type 1 and Type 2 is how the cost is calculated. For a Type 2
ASE, only the external cost (metric) is considered when multiple paths to
the same destination are
Are there any cons for running IPTV in draft-rosen-mvpn as opposed to
global
routing table
current implementation makes it generally easier to reduce
loss-of-connectivity after link/node failures using IGP Fast Convergence
compared to BGP-based convergence when the mcast sources/TV headends are
will be very
limited.
oli
-Original Message-
From: Oliver Boehmer (oboehmer) [mailto:oboeh...@cisco.com]
Sent: Monday, February 18, 2013 4:25 PM
To: Adam Vitkovsky; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] pros and cons for IPTV multicast in rosen-mvpn vs GRT
On 05/02/2013 11:03, Artyom Viklenko ar...@viklenko.net wrote:
05.02.2013 10:30, sth...@nethelp.no пишет:
New ip addresses was configured as secondary on interfaces in question.
These new subnets (/30) appear in routing table, cef, etc. Network
statement also was added to ospf configuration.
Well, have you defined any of these other realms on the Radius server
(with the static cisco password)? If you don't, and if you don't have
a
vpdn-group with a request-dialin matching their realm, nothing will
break, adding the vpdn authorization .. on those vtemplates will just
make sure
Thanks Oli,
sorry for not mentioning it, but the command needs to be applied to the
vtemplate referenced in the vpdn-group which terminates the original
L2TP
tunnel from the LAC. You might want to consider putting this on all
vtemplates, as this could avoid quite a few Radius requests
Hi C-NSP Members,
We are a service provider running Cisco CRS-3 in our IP/MPLS core. Due to
protection, we have recently added another 10Gbps
link connecting 2 Cisco CRS-3 core routers, namely CR-A and CR-B. The
config below are on CR-A and CR-B has similar config.
Question :
1. Is this a
Adam,
Is there really no conditional default advertisement possibility in IOS
XR?
I mean towards vpnv4:
(config-bgp)#vrf inet
(config-bgp-vrf)#default-information originate ?
cr
in BGP, this command by itself does not originate a default, it just
enables the redistribution of 0.0.0.0/0 or
Hi Guys, Have a 7200 (LNS) that terminates DSL tails from multiple
carriers (Using our radius for auth) - Attempting to forward connection
requests for a specific realm to an alternate LNS (So create an L2TP
tunnel) Have the following vpdn setup, but the tunnel is not getting
created to the
Thanks very much Oli,
aaa authorization network LOCAL_AUTH local
interface virtual-template number
vpdn authorization LOCAL_AUTH
I've created a virtual-template (Using LOCAL_AUTH as you have suggested),
but I am unable to apply the template to the vpdn-group?
i.e. with
I have a one more query with HA mode . can we configure both NSR and NSF
together , and if so during switchover which one is triggered first NSR
or NSF .
you can either configure nsf cisco or nsf ietf in ISIS, so one or the
other. The only common thing is that a router configured with nsf
Lee,
I was wondering if anyone has seen this and if it is caused by a bug or a
security hole. OSPF process is in an endless loop of errors that I was
only
able to fix with a reboot. I could not restart the OSPF process as it
would
just hang for 60 seconds and then give up. This problem takes the
David,
I'm Just looking at Cisco's IPFIX implementation using the new Flexible
Netflow CLI, and wondering how one would configure the Source ID
(actually called the Observation Domain ID) in the header.
[...]
it seems from this that is is generated and not flexible (I.e user
settable), I'd very
' to be sure we didn't run into some sort of
bug/mis-configuration.
Thank you.
Best Regards,
Alex.
On Jan 22, 2013 8:04 AM, Oliver Boehmer (oboehmer) oboeh...@cisco.com
wrote:
Alex,
On 22/01/2013 01:19, Alex K. nsp.li...@gmail.com wrote:
Hi Pete,
We're running 12.2(33)SRA6.
On SIP-200 it's
I know I mentioned this one on the list earlier
But I just want to put the rumors to the rest once and forever
So is it alright to configure the advertise best-external on all PEs
under
the vpnv4 address-family?
Or do I need to be worried about some weird loop voodoo?
And thus advertise
Alex,
On 22/01/2013 01:19, Alex K. nsp.li...@gmail.com wrote:
Hi Pete,
We're running 12.2(33)SRA6.
On SIP-200 it's running fine (as expected). Configuring
NBAR-using-policy-map on an *SVI*, causes high CPU Interrupts.
I do believe it's being punted to a CPU.
But this time I need a
Not sure but just saw some wireshark output which shows the ethernet
header in ISIS is IEEE 802.3 which doesn't have ethertype field and VLAN
ID is not there.
ISIS uses regular 802.3 ethernet frames, so we can just insert an 802.1q
tag?
oli
Amit,
I was testing NSR ( NSF - CIsco) in IOS-XR in GSR and CRS , However i am
able to see the LSP-DB's syncing in both the routers.
RP/0/8/CPU0:cr2.BLB#sh isis checkpoint lsp
Tue Jan 15 05:49:21.676 IST
IS-IS COLT checkpoint LSPs
Level LSPID Chkpt ID
2crs1.BLB.00-00
Amit,
Just a small doubt default maximumLSPGenerationInterval is 15 mins so
is SPF run . If we fine tune our maximumLSPGenerationInterval to 65000
secs i.e 1083 mins , Still my ISIS SPF Periodic will be 15 mins ??
true, we don't adapt the periodic timer if you change the lsp generation
timer.
1 - 100 of 622 matches
Mail list logo
